Security Specialist – Remote

You are a driven and motivated problem solver ready to pursue meaningful work. You strive to make an impact every day & not only at work, but in your personal life and community too. If that sounds like you, then you’ve landed in the right place.

The Hartford’s Information Protection (THIP) organization is looking for a talented security professional to join a high-performing team that is charged with governing, managing, and delivering our company’s cybersecurity defenses. As a Security Specialist, this position will provide the individual an opportunity to help shape the direction of our company’s cyber security programs by providing thought leadership, professional support, and valued contributions to a range of activities.

This role within our Threat Management team will focus on reviewing and aggregating threat intelligence information from multiple security and industry sources to provide THIP and executive IT leadership with a concise and accurate summary/recap of the current threat landscape, threat actors and relevant threat campaigns and how they potentially would impact The Hartford’s enterprise. This position will play an important role in providing a daily perspective of the threat environment and actors and communicating that to THIP leadership. In addition to performing daily threat intelligence reviews of private and open-source intelligence (OSINT), the role potentially will also perform threat hunting based on capacity and skill set. The right person will bring passion that promotes continuous learning, and a drive to regularly identify and assess new or emerging threat intelligence opportunities.

RESPONSIBILITIES:

This position is responsible for monitoring, reviewing, and assessing various sources of threat intelligence and preparing executive level briefs and reports based on that information.

• Performing daily review of Threat Management platforms, private and open sources for threat intelligence.
• Reviewing industry sources and preferred and tangentially related security vendors alerts and communications for threat intelligence.
• Conducting and correlating threat research using OSINT, private sources, and proprietary tools, performing threat modeling and producing intelligence threat assessments to peers and direct leadership.
• Prepare written daily executive level leadership briefings/reports based on assessing threat intelligence information.
• Ability to present and provide intelligence briefings (including risk) to both technical and non-technical audiences on threats, severity, and impact likelihood.
• Work closely with THIP team members and leadership to understand the contextual relevance and applicability of the threat intelligence to The Hartford’s environment.
• Demonstrates and provides subject matter expertise of the threat landscape including, but not limited to cyber-attack vectors, threat actors, security trends, security policies and recommendations from both public and private sectors.
• Applying threat intelligence research, support the Threat Management team in performing threat hunting activities, as necessary.
• Takes a proactive approach to learning about the latest threats, threat actors, tactics, techniques and procedures and malware.

QUALIFICATIONS:

Candidates will be evaluated based on their ability to perform the duties listed above while demonstrating the skills and competencies necessary to be highly effective in the role. These skills and competencies include:

• College degree in Computer Science, Information Security, Engineering, or related field.
• 2+ years of work experience in Information Security.
• Prior experience in security with a strong general understanding of security best practices, concepts, and domain knowledge.
• Understanding and experience with threat intelligence capabilities and develop them into threat intelligence reports, briefing and communications.
• Develop or bring existing experience and knowledge around zero-day threats, bad actor motivations, TTPs and overall threat landscape.
• A broad and diverse security skillset with an understanding of modern network security technologies (e.g., Firewalls, Security Information Event Management, Intrusion Prevention, Intrusion Detection, DDoS protections, Endpoint Detection and Response, Anti-Virus, etc.).
• Possesses strong verbal communication skills to deliver strategic, tactical, and operational intelligence to audiences with varying degrees of technical knowledge.
• Highly technical writing skills to deliver executive level materials to a broad audience.
• Demonstrated ability to interact and collaborate effectively in team settings
• Demonstrated ability to organize, prioritize work and meet deliverable timeframes
• Original and innovative thinking that produces new ideas and creates innovative solutions.
• A willingness to continuously learn and develop skills commensurate to this role and other potential growth opportunities within and across the organization.
• Must be willing to work East Coast hours.

A successful candidate will possess some or all of the following background and experiences:

• Experience with security industry taxonomies like Cyber Kill Chain, MiTRE’s ATT&CK, NIST and STIX 2.0
• Has experience conducting and correlating threat research using OSINT, incident response engagement data, proprietary tools, performing threat modeling, and producing intelligence threat assessments.
• Industry recognized certifications, such as Certified Information Systems Security Professional (CISSP), GIAC, EC-Council, ISACA certifications are preferred.
• Previous use of SIEM, Threat Intelligence Platform (TIP) and data analytics tools preferred

Compensation

The listed annualized base pay range is primarily based on analysis of similar positions in the external market. Actual base pay could vary and may be above or below the listed range based on factors including but not limited to performance, proficiency and demonstration of competencies required for the role. The base pay is just one component of The Hartford’s total compensation package for employees. Other rewards may include short-term or annual bonuses, long-term incentives, and on-the-spot recognition. The annualized base pay range for this role is:

$86,080 – $129,120

Benefits

Our company’s success is due to our employees’ dedication and passion for their work. They are our greatest asset. That’s why we are committed to offering employees and their families a comprehensive benefits package and award-winning well-being programs. By helping our employees achieve their full potential, we unlock our own. Visit https://www.thehartford.com/careers/benefits for details.

Equal Opportunity Employer/Females/Minorities/Veterans/Disability/Sexual Orientation/Gender Identity or Expression/Religion/Age

Information Security Specialist – IS08DE